Multi-factor authentication (MFA) protects you from unauthorized third-party use and thus makes an important contribution to data security. We strongly recommend enabling MFA, as this is an effective way to prevent insecure passwords and third-party access.

This article offers answers to the following questions:

What exactly is multi-factor authentication?

As part of the multi-factor authentication, you will also be asked for a security code when logging in, which will be sent to your registered email address. The login hence asks for a two-step confirmation. With this feature, Falcon effectively prevents any login attempts that are not your own.

Do I have to do this every time?

No. If you checked the "Remember me" box when you logged in, you don't have to. Falcon will then log you in directly and conveniently. However, this feature is automatically disabled if you have been inactive for more than 30 days.

How can I enable/disable multi-factor authentication?

You can de/activate multi-factor authentication individually in your user account. To do this, you need to click on your user account and on the "Security" tab. There you can administer the function. We strongly recommend leaving the function enabled.

How can I enable multi-factor authentication via SMS?

By default, you receive the MFA code via e-mail. However, receiving it as an SMS is often faster, more user-friendly, and also more secure. This is because a second communication channel is used. We, therefore, recommend using this option.

To do this, select the security tab in your user account and enter your mobile phone number in the designated field at the bottom. Thereafter you will receive a code via SMS for the first time, which you have to enter for confirmation. Once confirmed the authentication via SMS is activated.

Falcon 2021-08-24 at 1.57.53 PM

Why is multi-factor authentication triggered although I turned it off?

When you log in for the first time, Falcon prompts you for authentication with a security code. After that, the feature is disabled by default. However, if Falcon detects a possible third-party access attempt, MFA is triggered nonetheless. The following reasons can trigger the process:

Login attempt ...

... with another device / operating system.

... with another browser.

... from another time zone.

... from another location.

... with a different internet service provider.

With this logic, Falcon identifies any login attempts that are potententially not your own.

As a hub owner, how can I see if the users in my hub have multi-factor authentication enabled?

In the user tab in the administration area of Falcon, there is a column (next to the users' email address) that shows a green check mark for users who have enabled MFA by SMS or a yellow check mark for MFA by email. You can also find this information in the user export.

As a Hub admin, how can I set that multi-factor authentication must be enabled for all Hub users?

In the Hub settings, in the Security tab, you can specify whether MFA is mandatory for a login to the Hub.

In addition, you can decide whether multi-factor authentication should only be performed via email or, because it is more secure, via SMS.

We strongly recommend enabling MFA, as this is an effective way to prevent insecure passwords and third-party access.

Did this answer your question?